linux, säkerhet

5989786 2001-01-19 23:15 -0800  /43 rader/ Greg KH <greg@WIREX.COM>
Sänt av: joel@lysator.liu.se
Importerad: 2001-01-23  00:55  av Brevbäraren (som är implementerad i) Python
Extern mottagare: BUGTRAQ@SECURITYFOCUS.COM
Externa svar till: greg@WIREX.COM
Mottagare: Bugtraq (import) <14921>
Ärende: Immunix 6.2 OS Security update for glibc
------------------------------------------------------------

-----------------------------------------------------------------------
	Immunix OS Security Advisory

Packages updated:	glibc
Effected products:	Immunix OS 6.2
Bugs Fixed:		immunix/1322
Date:			January 19, 2001
Advisory ID:		IMNX-2000-62-043-01
Author:			Greg Kroah-Hartman <greg@wirex.com>
-----------------------------------------------------------------------

Description:
  There is a bug in the current version of the GNU C Library (glibc)
  that is shipped with Immunix Linux 6.2.  This bug can allow
  unprivileged users to corrupt files that would normally be restricted
  to them (like /etc/shadow) by allowing them to preload libraries that
  were not specified by the system administrator.  

  Packages have been created and released for Immunix 6.2 to fix this
  problem.

Package names and locations:
  Precompiled binary packages for Immunix 6.2 are available at:
    http://immunix.org/ImmunixOS/6.2/updates/RPMS/glibc-2.1.3-22_StackGuard_1.i386.rpm
    http://immunix.org/ImmunixOS/6.2/updates/RPMS/glibc-devel-2.1.3-22_StackGuard_1.i386.rpm
    http://immunix.org/ImmunixOS/6.2/updates/RPMS/glibc-profile-2.1.3-22_StackGuard_1.i386.rpm
    http://immunix.org/ImmunixOS/6.2/updates/RPMS/nscd-2.1.3-22_StackGuard_1.i386.rpm

  Source package for Immunix 6.2 is available at:
    http://immunix.org/ImmunixOS/6.2/updates/SRPMS/glibc-2.1.3-22_StackGuard_1.src.rpm

md5sums of the packages:
  73632f0b2da29832b539cd922cf1f726  glibc-2.1.3-22_StackGuard_1.i386.rpm
  e7233177632603a14115adba6d9592eb  glibc-devel-2.1.3-22_StackGuard_1.i386.rpm
  46474424c51ef9b278dfd97017b33b69  glibc-profile-2.1.3-22_StackGuard_1.i386.rpm
  2e7fa539e65c3d75456ab9fb0cc37270  nscd-2.1.3-22_StackGuard_1.i386.rpm
  bbae74987f16567fcfe6481efdf92435  glibc-2.1.3-22_StackGuard_1.src.rpm

Online version of all Immunix 6.2 updates and advisories:
  http://immunix.org/ImmunixOS/6.2/updates/
(5989786) ------------------------------------------
Bilaga (application/pgp-signature) i text 5989787
5989787 2001-01-19 23:15 -0800  /10 rader/ Greg KH <greg@WIREX.COM>
Importerad: 2001-01-23  00:55  av Brevbäraren (som är implementerad i) Python
Extern mottagare: BUGTRAQ@SECURITYFOCUS.COM
Externa svar till: greg@WIREX.COM
Mottagare: Bugtraq (import) <14922>
Bilaga (text/plain) till text 5989786
Ärende: Bilaga till: Immunix 6.2 OS Security update for glibc
------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.3 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE6aTsAAl5ylTeuKpURAsFlAJ499vJfFAvDjF3EPQe+Rbd2pCAChQCfZP4I
vikYEvoZCwhh6pKUSr5ptz0=
=GID2
-----END PGP SIGNATURE-----
(5989787) ------------------------------------------